Anti executable

Discussion in 'other anti-malware software' started by Mahbubur, Oct 23, 2018.

  1. Mahbubur

    Mahbubur Registered Member

    Joined:
    Oct 23, 2018
    Posts:
    3
    Location:
    Canada
    Hi all I am new in this forum and not a tech guy. I need some advice about security software. I used to use appguard from blueridge. It was very useful as I don't know how to answer in hips messages from other security software use to show.
    appguard was very powerful and did not use to bother me with pop up messages about what to do in case of a suspected process. in lock-down mode my pc was very secure. Also there was no system impact at all.

    Since appguard does not offer a license for individual user any more. Is there any alternative software which can replace appguard for me on windows 10. I will consider both free and paid software.

    Any suggestion will be appreciated.
     
  2. noway

    noway Registered Member

    Joined:
    Apr 24, 2005
    Posts:
    433
    Not sure if you ever used Appguard 4.4.6.1 with lifetime license. If so, could you not just keep using that?
     
  3. shmu26

    shmu26 Registered Member

    Joined:
    Jul 9, 2015
    Posts:
    1,536
    Appguard does offer a "Solo" license now, but it is pretty expensive for home users. It is $90 a year. Besides the price, if you are not a tech guy, then you will not be able to configure Appguard for maximum security on your own. So I suggest that you look elsewhere.

    If you are looking for a free software with good protection and no system impact, I would recommend Comodo Firewall (without the anti-virus component) at the famous CruelSister settings. It takes 5 minutes to set up, and it does the job pretty well.
    By the way, CS settings means (among other things) that HIPS is disabled, so you don't see those annoying prompts...
     
  4. ichito

    ichito Registered Member

    Joined:
    Jan 14, 2011
    Posts:
    1,978
    Location:
    Poland - Cracow
  5. trott3r

    trott3r Registered Member

    Joined:
    Jan 21, 2010
    Posts:
    1,279
    Location:
    UK
    Also voodoo shield is worth a trial.
    Ransomoff by heilig is anti exe which is the one i use.

    Use one at a time during the trial period and see what works for you.
     
  6. Bill_Bright

    Bill_Bright Registered Member

    Joined:
    Jun 29, 2007
    Posts:
    3,879
    Location:
    Nebraska, USA
    On all our systems here with W10, we use simply Windows own Windows Defender (WD) and Windows Firewall, plus either Malwarebytes Free or Malwarebytes Premium and no system here has ever been compromised. Malwarebytes Premium is the only paid product I would recommend. I use it on this machine, and my notebook, along with WD.

    We also make sure Windows is maintained and kept current, and we avoid being "click-happy" on unsolicited downloads, attachments, links and popups. Contrary to what some want everyone to believe, Windows Defender is actually quite capable of keeping us safe (if the computer is kept current and the user is not click-happy - necessary precautions regardless which security program is used). Malwarebytes Premium really just adds comforting reassurance that WD, or we, as users and always the weakest link in security, did not let something slip in.

    To ensure Windows Defender stays active when Malwarebytes is installed (since WD, by default, steps aside when alternative programs are installed) simply access the Malwarebytes main options page, go to Settings > Application > Windows Action Center and ensure "Never register Malwarebytes in the Windows Action Center" button is ticked.

    It is important to remember Windows 10 is not XP. We just don't need the layer upon layer of protection for W10 we needed with XP.

    Of course, Windows Defender is not for everyone. Windows Defender is probably not for you if any of the following apply:
    • If you don't keep Windows updated,
    • If you don't keep your security solution updated,
    • If you are "click-happy" on unsolicited downloads, links, popups, and attachments,
    • If you visit illegal pornography or gambling sites,
    • If you participate in illegal filesharing via Torrents and P2P sites,
    • If you connect to public "hotspots" with admin level accounts,
    • If you have undisciplined users using the computer with admin level accounts who do any of the above.
    But if those scenarios don't apply to you, then Windows Defender is just fine. I like to say we don't need an Abrams Tank to be safe while driving around. We just need a recent model car that is properly maintained to current standards, and most importantly, we need to drive defensively - the same things required regardless.

    As to your very valid concern about system impact, I have not seen (felt) WD with Malwarebytes Premium impacting performance on any of the 6 systems here, nor have I had any complaints from any users of the computers I am responsible for.
     
  7. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,590
    Hi Bill

    Very interesting post, but has nothing to do with Anti Executables. Another words OFF TOPIC
     
  8. Bill_Bright

    Bill_Bright Registered Member

    Joined:
    Jun 29, 2007
    Posts:
    3,879
    Location:
    Nebraska, USA
    What I am saying is a separate anti-executable program is not needed if you already have a viable security solution, you keep Windows current and you are not a click-happy user.

    Plus, the OP specifically said,
     
  9. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,092
    Location:
    Mexico
    lol Come on...
    referring to this:
     
  10. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,590
    Actually the anti executable approach is probably the best. Recently I ran almost 800 samples of live malware including exe's scripts and macros. No AV type program caught everything and I doubt WD would either. 3 programs set up properly did. Appguard, NVT's ERP v3 and earlier versions of Voodooshield did. So that's where I'd start looking.

    Also to me I have to ask.. Do you really want to trust your computer security to the same company that brings us the sterling windows updates
     
  11. Bill_Bright

    Bill_Bright Registered Member

    Joined:
    Jun 29, 2007
    Posts:
    3,879
    Location:
    Nebraska, USA
    It is not about WD. It is about the fact layer after layer of specialized security programs are just not needed these days. Any decent anti-malware solution (Trend Micro, Norton, McAfee, Kaspersky, Avira, AVG, Avast, Windows Defender or several others), updated Windows, and a user that is not click-happy will protect a system without the need for additional layers that eat up resources.

    It always amazes me how quickly the anti-Microsoft and anti-Windows Defender people come rushing out whenever it is mentioned. Is another, biased, opportunistic bashing of Windows Defender and Microsoft helpful here?
     
  12. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,092
    Location:
    Mexico
  13. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    5,656
    Location:
    USA
    I believe ERP is the best alternative to AppGuard, but he said he does not want to be bothered with prompts because he does not know how to respond to them. Even if you set up ERP in lockdown mode you need to have enough knowledge to train it by responding to prompts for a while, and anytime Windows updates you may have to answer more prompts due to OS changes.

    SecureAPlus may be the best option for him since it's cloud AV can also check for malicious code executing, but it cannot replace education or experience. He may be stuck with the same issue I described with ERP, but to a much lesser extent.

    VoodooShield may also be a good alternative. It's an AE that has its own Ai engine to check for malicious code attempting to execute. VoodooShield has the same shortcoming for users lacking enough knowledge to answer prompts.

    I have not used SecureAPlus, or VoodooShield for quite a while so I don't know their current state. I will note that SecureAPlus has always been resource heavy on my machine/setup. You may want to try it as the only AV on your machine.
     
  14. guest

    guest Guest

  15. Mahbubur

    Mahbubur Registered Member

    Joined:
    Oct 23, 2018
    Posts:
    3
    Location:
    Canada
    Thank you guys for your suggestions. I find it very useful. I read all the opinions. I will try NVT ERP and also I will learn about SRP (software restriction policy) I think ERP with WD will be enough. Thank you all again for helping.
     
  16. shmu26

    shmu26 Registered Member

    Joined:
    Jul 9, 2015
    Posts:
    1,536
    SRP, managed by Andy Ful's Hard_Configurator tool, is awesome.
    Our friend @Mahbubur originally described himself as not a tech guy, so I suggested the no-brainer solution. Now I see that he is up to the challenge of the top security solutions. :)
    My experience is that SRP has less system impact than ERP. I can feel when ERP is on my system, but I can't feel SRP.
    I also experience ReHIPS to be lighter than ERP, but still, it's perceptible.
    But I don't feel Comodo or SRP at all. They are "invisible".
     
  17. imuade

    imuade Registered Member

    Joined:
    Aug 4, 2016
    Posts:
    751
    Location:
    Italy
    I'd suggest Re:HIPS https://rehips.com/en/
    It has a learning mode so that you can easily whitelist the SW you already have on your PC
     
  18. shmu26

    shmu26 Registered Member

    Joined:
    Jul 9, 2015
    Posts:
    1,536
    Great idea.
    The free version (demo version) is more than enough for an effective anti-exe solution.
     
  19. imuade

    imuade Registered Member

    Joined:
    Aug 4, 2016
    Posts:
    751
    Location:
    Italy
    Yeah, I'm waiting for Microsoft to re-release v. 1809, then I'll replace NVT OSA with Re:HIPS and see how it goes
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.